Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: RH9pLn6hP96x9ca4MRdmqN7WQSQ2bV4WvJCEOcbdV7I=
Subject key identifier: C5:91:D0:F4:5D:AB:EE:14:5B:48:46:67:87:78:1F:94:C0:5B:94:BA
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 019357D237B1C2F97735DD21E1738626FE60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 0D69
Signing time: Sat 23 Nov 2024 07:00:14 +0000
Manifest this update: Sat 23 Nov 2024 07:00:14 +0000
Manifest next update: Sun 24 Nov 2024 07:00:14 +0000
Files and hashes: 1: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: J4E/BdTtUcuZyGd335PxiQe/oslVbKQCy4KyIzXhZ1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 00:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:37:b1:c2:f9:77:35:dd:21:e1:73:86:26:fe:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Nov 23 07:00:14 2024 GMT
Not After : Nov 24 07:00:14 2024 GMT
Subject: CN=c591d0f45dabee145b48466787781f94c05b94ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:85:ed:66:d3:05:cf:2c:fa:98:f3:66:c4:d7:
47:de:da:82:b8:9e:a2:fd:fb:fe:94:27:2e:14:fb:
c8:cf:45:2a:ee:bd:0f:5a:0c:4b:c4:ac:e7:1f:7e:
07:33:99:86:12:f7:ec:fd:50:de:08:3d:ab:46:4a:
58:d1:4e:19:11:93:01:63:05:83:71:e1:0e:ca:d9:
10:7b:5b:5c:81:fe:5b:b9:1c:86:01:63:7d:41:77:
82:1a:42:c4:a2:83:7c:fa:99:e5:05:9f:08:c6:f9:
e5:34:f6:e1:08:49:55:d4:19:05:ba:39:8b:a1:6c:
4d:cd:ae:24:79:1b:82:10:aa:f9:1f:c2:2c:39:98:
af:73:34:bc:f3:da:16:2e:6b:04:1d:8f:e3:3e:68:
25:e6:3e:33:60:c2:5b:82:e6:fd:a5:be:b3:23:97:
34:77:2b:48:21:d6:67:9c:b0:8b:22:11:4b:68:a2:
0f:80:25:6e:c4:4c:e4:04:dd:58:93:37:70:6c:82:
69:82:22:1f:fd:dc:75:c8:f4:df:f9:f4:63:37:b2:
b2:4c:85:bc:0b:fe:5e:a7:2c:51:61:3f:c7:21:fc:
c6:27:5c:95:72:ec:12:1c:ff:f8:55:a2:83:5c:a7:
46:ca:b2:99:bb:16:76:f9:e7:df:3d:75:c3:87:61:
fc:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:91:D0:F4:5D:AB:EE:14:5B:48:46:67:87:78:1F:94:C0:5B:94:BA
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:72:bf:c3:20:5a:4e:0e:01:80:3f:c3:91:4e:1b:75:87:42:
be:f7:00:1b:a1:a2:f3:c5:51:d6:35:2f:a3:ae:97:b5:43:a0:
2a:9c:f3:54:32:a2:b8:ce:9c:e1:75:94:14:74:d7:64:1b:06:
17:4d:df:44:00:bc:74:09:45:de:29:67:00:6e:b8:b7:ea:78:
a7:cb:05:bd:0b:19:61:6f:cb:2d:54:3e:fc:ba:5a:d6:e4:12:
34:13:a3:21:1c:83:10:ca:d8:14:d5:18:09:0d:df:20:10:02:
ac:87:46:72:39:e7:20:18:ef:4d:04:ed:82:0c:2c:d6:6e:eb:
8f:1e:70:44:a8:ff:46:1c:2b:75:50:16:0c:58:3a:8d:83:04:
2e:5a:ce:85:9a:e8:bd:dd:5c:fc:23:02:ea:66:bd:ad:fa:85:
08:20:4c:65:b1:06:0a:68:6b:f2:8e:7c:c7:07:10:36:c9:bb:
5a:4a:c9:f7:cd:2f:c9:7d:ab:5f:97:ab:a6:3b:7c:fb:be:77:
f8:c2:20:35:ac:6a:37:c1:f3:73:a7:5f:bd:9e:60:4b:c9:47:
99:5b:a0:e7:b4:68:ca:80:4f:80:5a:e0:c1:27:f5:0b:39:39:
27:1e:fb:53:6d:dd:d4:cc:9f:bd:1e:88:55:23:1d:eb:a9:8f:
b2:62:ca:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 08:46:09 2024 by rpki-client on console-fra.rpki-client.org